tcclasses ##################################### eth0 1 128kbps 256kbps 2 eth0 2 full full 1 default
eth1 3 128kbps 256kbps 2 eth1 4 full full 1 default ####################################### tcrules ############################### 1 0.0.0.0/0 192.168.200.1 all 1 192.168.200.1 0.0.0.0/0 all 3 0.0.0.0/0 192.168.200.1 all 3 192.168.200.1 0.0.0.0/0 all ################################ scp... ##################################[EMAIL PROTECTED] doctor]$ scp [EMAIL PROTECTED]:/home/doctor/thunderbird.tar.gz .
Password: thunderbird.tar.gz 2% 6660KB 56.9KB/s 1:33:25 ################################## from the dump ########################################## Chain tcfor (1 references)pkts bytes target prot opt in out source destination 1888 2274K MARK all -- * * 0.0.0.0/0 192.168.200.1 MARK set 0x1 1153 101K MARK all -- * * 192.168.200.1 0.0.0.0/0 MARK set 0x1 1888 2274K MARK all -- * * 0.0.0.0/0 192.168.200.1 MARK set 0x3 1153 101K MARK all -- * * 192.168.200.1 0.0.0.0/0 MARK set 0x3
############################################ ##########################################tcp 6 431999 ESTABLISHED src=192.168.200.1 dst=201.3.160.245 sport=35134 dport=22 src=201.3.160.245 dst=201.89.170.10 sport=22 dport=35134 [ASSURED] mark=0 use=1
###########################################It's not following the marks for some reason, the dump is attached (status201.txt.bz2)..... I tried some other things, like marking all traffic from/to 201.3.160.245 (status245.txt.).
Ismael----- Original Message ----- From: "Jorge Daza García-Blanes" <[EMAIL PROTECTED]>
To: "Shorewall Users" <[email protected]> Sent: Saturday, December 30, 2006 3:42 PM Subject: Re: [Shorewall-users] TC - not marking correctly Sorry, I posted before having seen this mail. Jorge Daza García-Blanes [EMAIL PROTECTED] - GPG id: 5D7ACDEF On 30/12/2006, at 18:09, Andrew Suffield wrote:
On Sat, Dec 30, 2006 at 08:18:19AM -0800, Tom Eastep wrote:The reason that I wouldn't have considered that approach is that it basically can't work correctly. What you are usually trying to do when shaping incoming traffic is to limit the load on your Internet link; in this case, Ismael wants to limit the traffic generated by 192.168.200.1. But it is impossible to identify the Squid-generated Internet traffic is the result of requests from 192.168.200.1.The solution would appear to be to get squid to do the traffic shaping - this is one of the things which it is designed for (and you get to combine shaping rules with squid's full ACL system). Check the manual for 'delay pools'; beyond that is offtopic here.---------------------------------------------------------------------- ---Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php? page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Shorewall-users mailing list [email protected]https://lists.sourceforge.net/lists/listinfo/shorewall-users
status245.txt.bz2
Description: Binary data
status201.txt.bz2
Description: Binary data
------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
